Skip to content

Releases: openwrt/openwrt

22.03.0

v22.03.0
Compare
Choose a tag to compare
  _______                     ________        __
 |       |.-----.-----.-----.|  |  |  |.----.|  |_
 |   -   ||  _  |  -__|     ||  |  |  ||   _||   _|
 |_______||   __|_____|__|__||________||__|  |____|
          |__| W I R E L E S S   F R E E D O M
 -----------------------------------------------------
 OpenWrt 22.03.0, r19685-512e76967f
 -----------------------------------------------------

OpenWrt 22.03.0

The OpenWrt community is proud to announce the first stable release of the OpenWrt 22.03 stable version series. It incorporates over 3800 commits since branching the previous OpenWrt 21.02 release and has been under development for about one year.

Get OpenWrt Firmware at:

The OpenWrt Project is a Linux operating system targeting embedded devices. It is a complete replacement for the vendor-supplied firmware of a wide range of wireless routers and non-network devices. See the Table of Hardware for supported devices. For more information about OpenWrt project organization, see the About OpenWrt pages.

An upgrade from OpenWrt 21.02 to OpenWrt 22.03 is supported in many cases with the help of the sysupgrade utility which will also attempt to preserve the configuration. A configuration backup is advised nonetheless when upgrading to OpenWrt 22.03. (see “Upgrading” below).

Highlights in OpenWrt 22.03.0

Firewall4 based on nftables

Firewall4 is used by default, superseding the iptables-based firewall3 implementation in the OpenWrt default images. Firewall4 uses nftables instead of iptables to configure the Linux netfilter ruleset.

Firewall4 keeps the same the UCI firewall configuration syntax and should work as a drop-in replacement for fw3 with most common setups, emitting nftables rules instead of iptables ones.

Including custom firewall rules through /etc/firewall.user still works, but requires marking the file as compatible first, otherwise it is ignored. Firewall4 additionally allows to include nftables snippets. The firewall documentation explains how to include custom firewall rules with firewall4. Some community packages that add firewall rules might not work for now, and will need to be adapted to fw4: this will happen gradually throughout the lifetime of the 22.03 release series.

The legacy iptables utilities are not included in the default images anymore, but can be added back using opkg or the Image Builder if needed. The transitional packages iptables-nft, arptables-nft, ebtables-nft and xtables-nft can be used to create nftables rules using the old iptables command line syntax.

Many new devices added

OpenWrt 22.03 supports over 1580 devices. Support for over 180 new devices was added in addition to the device support by OpenWrt 21.02. OpenWrt 22.03 supports more than 15 devices capable of Wifi 6 (IEEE 802.11ax) using the MediaTek MT7915 wifi chip.

More targets converted to DSA

The following targets or boards were migrated from swconfig to DSA with OpenWrt 22.03 in addition to the systems already migrated with OpenWrt 21.02:

bcm53xx: All board using this target were converted to DSA
lantiq: All boards using the xrx200 / vr9 SoC
sunxi: Bananapi Lamobo R1 (only sunxi board with switch)

Dark mode in LuCI

The LuCI bootstrap design supports a dark mode. The default design activates dark mode depending on the browser settings. Change it manually at “System” → “System” → “Language and Style”.

Year 2038 problem handled

OpenWrt 22.03 uses musl 1.2.x, which changed the time_t type from 32 bit to 64 bit on 32 bit systems, on 64 bit system it was always 64 bit long. When a Unix time stamp is stored in a signed 32 bit integer it will overflow on 19 January 2038. With the change to 64 bit this will happen 292 billion years later. This is a change of the musl libc ABI and needs a recompilation of all user space applications linked against musl libc. For 64 bit systems this was done when the ABI was defined many years ago, the glibc ARC ABI already has a 64 bit time_t.

Core components update

Core components have the following versions in 22.03.0-rc6:

  • Updated toolchain:
    • musl libc 1.2.3
    • glibc 2.34
    • gcc 11.2.0
    • binutils 2.37
  • Updated Linux kernel
    • 5.10.138 for all targets
  • Network:
    • hostapd 2.10
    • dnsmasq 2.86
    • dropbear 2022.82
    • cfg80211/mac80211 from kernel 5.15.58
  • System userland:
    • busybox 1.35.0

In addition to the listed applications, many others were also updated see the detailed Changelog for more information.

Upgrading to 22.03.0

Sysupgrade can be used to upgrade a device from OpenWrt 21.02 to 22.03, and configuration will be preserved in most cases. Upgrades from a previous 22.03.0 release candidate are also supported.

Warning
Sysupgrade from 19.07 to 22.03 is not supported.

Warning
There is no migration path for targets that switched from swconfig to DSA. In that case, sysupgrade will refuse to proceed with an appropriate error message: Image version mismatch. image 1.1 device 1.0 Please wipe config during upgrade (force required) or reinstall. Config cannot be migrated from swconfig to DSA Image check failed

Known issues

None so far. 🤞

See reporting bugs if you encounter issues with this release.

Final notes

As always, a big thank you goes to all our active package maintainers, testers, documenters and supporters!

Sunshine!

The OpenWrt Community

22.03.0-rc6

v22.03.0-rc6
Compare
Choose a tag to compare
22.03.0-rc6 Pre-release
Pre-release
  _______                     ________        __
 |       |.-----.-----.-----.|  |  |  |.----.|  |_
 |   -   ||  _  |  -__|     ||  |  |  ||   _||   _|
 |_______||   __|_____|__|__||________||__|  |____|
          |__| W I R E L E S S   F R E E D O M
 -----------------------------------------------------
 OpenWrt 22.03.0-rc6, r19590-042d558536
 -----------------------------------------------------

OpenWrt 22.03.0-rc6

The OpenWrt community is proud to announce the fourth release candidate of the upcoming OpenWrt 22.03 stable version series. It incorporates over 3500 commits since branching the previous OpenWrt 21.02 release and has been under development for about one year.

This is just a release candidate and not the final release yet.

Get OpenWrt Firmware at:

OpenWrt 22.03.0-rc2 was skipped because the URL of the release repository was not updated correctly
OpenWrt 22.03.0-rc3 was skipped because of a severe problem in firewall4
OpenWrt 22.03.0-rc5 was skipped because WolfSSL ABI issues in our build system

Changes between OpenWrt rc4 and rc6

For a detailed list of changes since OpenWrt 22.03.0-rc1 see the 22.03.0-rc5 changelog and 22.03.0-rc6 changelog.

Changes in this release candidate since the previous 22.03.0-rc4 release candidate are:

Software updates

  • Linux kernel updated to version 5.10.134
  • mac80211 updated to version 5.15.58-1
  • wolfssl updated to version 5.4.0
  • openssl update to version 1.1.1q
  • intel-microcode update to version 20220510
  • mt76 update to version 2022-07-03
  • wireless-regdb update to version 2022.06.06

Misc changes

  • wolfssl: Deactivate CPU acceleration by default
  • wolfssl: Make package shared again
  • firewall4: multiple updates
  • iptables: default to ip(6)tables-nft
  • hostapd: Add owe_transition_ifname option

Device support

New devices

  • ath79: RouterBOARD mAP
  • mediatek: Ubiquiti UniFi 6 LR v2
  • ramips: Netgear WAX202

Improvements

  • bcm53xx: NAT performance increase
  • rampis: ZyXEL NBG-419N v2: fix booting
  • Activate ARM64 crypto extensions in supported ARM64 target kernels
  • Update uboot-mvebu to version v2022.04
  • ipq40xx: mikrotik: provide BDF-s on demand

Highlights in OpenWrt 22.03.0

Firewall4 based on nftables

Firewall4 is used by default instead of firewall3 in the OpenWrt default images. Firewall4 uses nftables instead of iptables to configure the Linux netfilters.

Firewall4 uses the same UCI firewall configuration. Old firewall configurations should still work with firewall4, using nftables now. The extra option which allowed to add custom iptables commands does not work any more.

iptables is not included in the default images any more, it can be added with opkg or ImageBuilder if needed. iptables-nft, arptables-nft, ebtables-nft and xtables-nft provide the known command line interface from the old tools, but they will create nftables entries instead.

Many new devices added

OpenWrt 22.03 supports over 1550 devices. Support for over 160 new devices were added in addition to the device support by OpenWrt 21.02. OpenWrt 22.03 supports more than 10 devices capable of Wifi 6 (IEEE 802.11ax) using the MediaTek MT7915 wifi chip.

The qoriq target for the NXP QorIQ (PowerPC) was added in OpenWrt 22.03.
The bmips target for the Boardcom MIPS BCM33xx, BCM63xx and BCM7xxx SoCs was added.

More targets converted to DSA

The following targets or boards were migrated from swconfig to DSA with OpenWrt 22.03 in addition to the systems already migrated with OpenWrt 21.02:

bcm53xx: All board using this target were converted to DSA
lantiq: All boards using the xrx200 / vr9 SoC
sunxi: Bananapi Lamobo R1 (only sunxi board with switch)

Dark mode in LuCI

The LuCI bootstrap design supports a dark mode. The default design activates dark mode depending on the browser settings. Change it manually at “System” → “System” → “Language and Style”.

Year 2038 problem handled

OpenWrt 22.03 uses musl 1.2.x, which changed the time_t type from 32 bit to 64 bit on 32 bit systems, on 64 bit system it was always 64 bit long. When a Unix time stamp is stored in a signed 32 bit integer it will overflow on 19 January 2038. With the change to 64 bit this will happen 292 billion years later. This is a change of the musl libc ABI and needs a recompilation of all user space applications linked against musl libc. For 64 bit systems this was done when the ABI was defined many years ago, the glibc ARC ABI already has a 64 bit time_t.

Upgrading to 22.03.0-rc6

Sysupgrade can be used to upgrade a device from 21.02 to 22.03, and configuration will be preserved in most cases.

Sysupgrade from 19.07 to 22.03 is not supported

There is no migration path for targets that switched from swconfig to DSA. In that case, sysupgrade will refuse to proceed with an appropriate error message:

Image version mismatch. image 1.1 device 1.0 Please wipe config during upgrade (force required) or reinstall. Config cannot be migrated from swconfig to DSA Image check failed

Known issues

  • None

Final notes

As always, a big thank you goes to all our active package maintainers, testers, documenters, and supporters.

Have fun!

The OpenWrt Community

22.03.0-rc4

v22.03.0-rc4
Compare
Choose a tag to compare
22.03.0-rc4 Pre-release
Pre-release
  _______                     ________        __
 |       |.-----.-----.-----.|  |  |  |.----.|  |_
 |   -   ||  _  |  -__|     ||  |  |  ||   _||   _|
 |_______||   __|_____|__|__||________||__|  |____|
          |__| W I R E L E S S   F R E E D O M
 -----------------------------------------------------
 OpenWrt 22.03.0-rc4, r19426-2b1941e47d
 -----------------------------------------------------

OpenWrt 22.03.0-rc4

The OpenWrt community is proud to announce the fourth release candidate of the upcoming OpenWrt 22.03 stable version series. It incorporates over 3500 commits since branching the previous OpenWrt 21.02 release and has been under development for about one year.

This is just a release candidate and not the final release yet.

Get OpenWrt Firmware at:

OpenWrt 22.03.0-rc2 was skipped because the URL of the release repository was not updated correctly
OpenWrt 22.03.0-rc3 was skipped because of a severe problem in firewall4

Changes between OpenWrt rc1 and rc4

For a detailed list of changes since OpenWrt 22.03.0-rc1 see the 22.03.0-rc4 changelog.

Changes in this release candidate since the previous 22.03.0-rc1 release candidate are:

Software updates

Linux Kernel updated to version 5.10.120 (from 5.4.111 in v22.03.0-rc1)
WolfSSL Update to version 5.3.0 (from 5.2.0 in v22.03.0-rc1)
OpenSSL Update to version 1.1.1o (from 1.1.1n in v22.03.0-rc1)

Misc changes

  • ucode: many updates
  • firewall4: many updates
  • Multiple fixes for flow offload fixing problems with IPv6 and PPPoE

Device support

New devices

  • ath79: TP-Link Deco M4R
  • ath79: Netgear WNDAP360
  • ath79: MikroTik RouterBOARD 952Ui-5ac2nD (hAP ac lite)
  • ath79: MikroTik RouterBOARD 951Ui-2nD (hAP)
  • ath79: Ubiquiti NanoBeam M5
  • bcm53xx: Asus RT-AC88U
  • ipq806x: Arris TR4400 v2
  • ramips: YunCore AX820
  • ramips: TP-Link RE650 v2
  • ramips: Wavlink WL-WN533A8
  • ramips: SERCOMM NA502S
  • ramips: Cudy X6
  • realtek: ZyXEL GS1900-16
  • realtek: ZyXEL GS1900-24E

Improvements

  • lantiq: Add upstream vectoring support

Highlights in OpenWrt 22.03.0

Firewall4 based on nftables

Firewall4 is used by default instead of firewall3 in the OpenWrt default images. Firewall4 uses nftables instead of iptables to configure the Linux netfilters.

Firewall4 uses the same UCI firewall configuration. Old firewall configurations should still work with firewall4, using nftables now. The extra option which allowed to add custom iptables commands does not work any more.

iptables is not included in the default images any more, it can be added with opkg or ImageBuilder if needed. iptables-nft, arptables-nft, ebtables-nft and xtables-nft provide the known command line interface from the old tools, but they will create nftables entries instead.

Many new devices added

OpenWrt 22.03 supports over 1550 devices. Support for over 160 new devices were added in addition to the device support by OpenWrt 21.02. OpenWrt 22.03 supports more than 10 devices capable of Wifi 6 (IEEE 802.11ax) using the MediaTek MT7915 wifi chip.

The qoriq target for the NXP QorIQ (PowerPC) was added in OpenWrt 22.03.
The bmips target for the Boardcom MIPS BCM33xx, BCM63xx and BCM7xxx SoCs was added.

More targets converted to DSA

The following targets or boards were migrated from swconfig to DSA with OpenWrt 22.03 in addition to the systems already migrated with OpenWrt 21.02:

bcm53xx: All board using this target were converted to DSA
lantiq: All boards using the xrx200 / vr9 SoC
sunxi: Bananapi Lamobo R1 (only sunxi board with switch)

Dark mode in LuCI

The LuCI bootstrap design supports a dark mode. The default design activates dark mode depending on the browser settings. Change it manually at “System” → “System” → “Language and Style”.

Year 2038 problem handled

OpenWrt 22.03 uses musl 1.2.x, which changed the time_t type from 32 bit to 64 bit on 32 bit systems, on 64 bit system it was always 64 bit long. When a Unix time stamp is stored in a signed 32 bit integer it will overflow on 19 January 2038. With the change to 64 bit this will happen 292 billion years later. This is a change of the musl libc ABI and needs a recompilation of all user space applications linked against musl libc. For 64 bit systems this was done when the ABI was defined many years ago, the glibc ARC ABI already has a 64 bit time_t.

Core components update

Core components have the following versions in 22.03.0-rc4:

Updated toolchain:

musl libc 1.2.3
glibc 2.34
gcc 11.2.0
binutils 2.37

Updated Linux kernel

5.10.120 for all targets

Network:

hostapd 2.10, dnsmasq 2.86, dropbear 2022.82
cfg80211/mac80211 from kernel 5.15.33

System userland:

busybox 1.35.0

In addition to the listed applications, many others were also updated.

Upgrading to 22.03.0-rc4

Sysupgrade can be used to upgrade a device from 21.02 to 22.03, and configuration will be preserved in most cases.

Sysupgrade from 19.07 to 22.03 is not supported

There is no migration path for targets that switched from swconfig to DSA. In that case, sysupgrade will refuse to proceed with an appropriate error message:

Image version mismatch. image 1.1 device 1.0 Please wipe config during upgrade (force required) or reinstall. Config cannot be migrated from swconfig to DSA Image check failed

Known issues

  • None

Final notes

As always, a big thank you goes to all our active package maintainers, testers, documenters, and supporters.

Have fun!

The OpenWrt Community

21.02.3

v21.02.3
Compare
Choose a tag to compare

The OpenWrt community is proud to announce the third service release of OpenWrt 21.02. It fixes security issues, improves device support, and brings a few bug fixes.

Download firmware images via the Firmware Selector, directly from our download servers or upgrade devices directly:

Main changes from OpenWrt 21.02.2

Only the main changes are listed below. See 21.02.3 changelog for the full list of changes.

Security fixes

Device support

  • Support for the following devices was added:
    • Yuncore XD3200
    • Yuncore A930
    • MikroTik RouterBOARD mAPL-2nD (mAP lite)
  • ramips: Make memory detection more reliable
  • ramips: Fix reboot for remaining 32 MB boards
  • x86: Add pata_sis driver
  • ipTIME mt7620 devices: Fix flash detection
  • Turris Omnia: Improve detection of u-boot environment with U-boot 2021.09
  • Ubiquiti UniFi: Fix label MAC address
  • mvebu: udpu: Fix initramfs booting
  • a20-olinuxino-lime2: Fix Ethernet link detection on
  • TP-Link TL-WR1043ND v4: Fix TPLINK_HWREV field
  • OCEDO Raccoon: Fix link for long cables
  • Ubiquiti UniFi AP Outdoor+: Fix label MAC address
  • TP-Link WPA8630Pv2: Move to ath79-tiny target
  • Improve support for some GPON SFP modules

Various fixes and improvements

  • Fix SSL certificate validation with some sites especially sites using Let’s Encrypt certificates
  • hostapd fixes and improvemnts:
    • fix radius problem due to invalid attributes
    • Expose more data over ubus
  • base-files: Call "sync" after initial setup
  • imagebuilder: Fix broken image generation with external targets

Core components

  • Update Linux kernel from 5.4.179 to 5.4.188
  • Update openssl from 1.1.1m to 1.1.1n
  • Update cypress-firmware from 5.4.18-2020_0402 to 5.4.18-2021_0812
  • Update mac80211 from 5.10.85 to 5.10.110
  • Update wolfssl from 5.1.1 to 5.2.0

Regressions

  • None

Known issues

Full release notes and upgrade instructions are available at
https://openwrt.org/releases/21.02/notes-21.02.3

In particular, make sure to read the regressions and known issues before upgrading:
https://openwrt.org/releases/21.02/notes-21.02.3#known_issues

For a detailed list of all changes since 21.02.2, refer to
https://openwrt.org/releases/21.02/changelog-21.02.3

To download the 21.02.3 images, navigate to:
https://downloads.openwrt.org/releases/21.02.2/

To stay informed of new OpenWrt releases and security advisories, there
are new channels available:

As always, a big thank you goes to all our active package maintainers, testers, documenters, and supporters.

Sunshine!

The OpenWrt Community

21.02.2

v21.02.2
Compare
Choose a tag to compare

The OpenWrt community is proud to announce the second service release of OpenWrt 21.02. It fixes security issues, improves device support, and brings a few bug fixes.

Download firmware images via the Firmware Selector or directly from our download servers:

Main changes from OpenWrt 21.02.1

Device support

  • Support for the following devices was added:
    • Xiaomi AIoT Router AC2350
    • Linksys EA6300 & EA9200
    • Netgear RAXE500
    • TP-Link TL-WA1201 v2
  • Minew G1-C: Allow dynamic RAM sizes
  • Fix U-Boot hang on lantiq danube-s v1.5 with MX29LV640EB NOR
  • TP-Link tl-mr3020-v3: Fix switch topology
  • Luxul XWR-3150 LAN: Fix ports numbering
  • WD MyBook Live DUO: Fix USB-Port
  • Turris Omnia: Use SFP module, if present
  • OpenMesh OM5P-AC v2: Fixed device tree

Various fixes and improvements

  • Add new rpcapd package
  • chmod 1777 /var/lock to follow FHS 3.0 guideline
  • netifd: fix deletion of ip tunnels (FS#4058)
  • multiple mac80211 backports:
    • Add support Wifi 6 GHz band and HE options in scripts
    • mac80211: fix IBSS/adhoc mode for brcmfmac
  • Add ath10k smallbuffers

Core components

  • Update Linux kernel from 5.4.154 to 5.4.179
  • Update mac80211 from 5.10.68 to 5.10.85
  • Update wolfssl from 4.8.1 to 5.1.1
  • Update wireless-regdb from 2021.04.21 to 2021.08.28
  • Update mt76 from 2021-06-06 to 2021-12-03
  • Update busybox from 1.33.1 to 1.33.2
  • Update intel-microcode from 20200616 to 20210608
  • Update linux-firmware from 20201118 to 20211216
  • Update openssl from 1.1.1l to 1.1.1m
  • Update mbedtls from 2.16.11 to 2.16.12

Regressions

  • Certificate validation fails in wolfssl against some sites especially sites using lets encrypt certificates. This affects for example wget in the default configuration #9283

Known issues

Full release notes and upgrade instructions are available at
https://openwrt.org/releases/21.02/notes-21.02.2

In particular, make sure to read the regressions and known issues before upgrading:
https://openwrt.org/releases/21.02/notes-21.02.2#known_issues

For a detailed list of all changes since 21.02.1, refer to
https://openwrt.org/releases/21.02/changelog-21.02.2

To download the 21.02.2 images, navigate to:
https://downloads.openwrt.org/releases/21.02.2/

To stay informed of new OpenWrt releases and security advisories, there
are new channels available:

As always, a big thank you goes to all our active package maintainers, testers, documenters, and supporters.

Sunshine!

The OpenWrt Community